For the web client that should be pretty easy to integrate as the logged in user is something that can be read by the browser. I think the challenge would come in with the MB3 user profile as they are created manually.
If the domain user's account credentials are known before hand, as in their account credententials are known (domain\user.name) it could be pre-added to the mb3 user account system and then dealt with using LDAP (or similar)
Some of the software I use at work works exactly like this. It is not fully automated, by the manual portion of the setup is simple and quick.
Not sure if that helps anything or not
Got beaten to the punch, but at least we were along the same lines
Edited by crashkelly, 10 October 2013 - 12:18 AM.